Report Abuse

9 Replies

Currently in SmarterMail when an administrator user is created, they have full access to administrator rights of the installation. At this time there is not a way to set 'read-only' permissions for administrator users. This could be considered as a feature for future versions of SmarterMail though.

Thanks

Report Abuse

Offensive Content

Wrong Category

Spam

Ban User

Are you sure you want to ban this user?

Ban IP Address

Are you sure you want to ban this IP Address?

Delete Confirmation

Manuel makes an extremely valid point here, and I would back up this request and ask that sub-administrator accounts be subject to rules set by the SmarterMail admin account when the domain is created.

Current, any additional admin account can do anything the primary administrator account can do, including changing the primary domain administrator's password.

Secondary domain administrators can also delete the primary administrator account.

This issue needs to be addressed ASAP! At the very least:

Secondary domain administrators should NOT be able to change the primary domain administrator account passwords.

Secondary domain administrators should NOT be able to delete the primary domain administrator account.

I would take this so far as to propose additional "administrative levels."

Second level administrator: create and delete user accounts; change passwords on all accounts -- with the EXCEPTION of the primary administrator; can modify newsletters created, and administrated by, all Mailing list administrators;

Third level administrator: change passwords on third level accounts only; no user creation, deletion or modification; can modify newsletters created and administrated by all Mailing list administrators;

Mailing list administrator: can create, modify and delete ASSIGNED mailing lists only; no user creation, deletion or modification; no password changes; no modifications to any mailing lists except those to which he or she is assigned.

Other SmarterMail administrators may have additional administrative level security suggestions, but lower level administrator accounts should never be able to modify or compromise the integrity of any higher level administrative level account.

Thanks, in advance, SmarterTools, for delving further into this very important issue.

Ban IP Address

Delete Confirmation

Found this old thread when looking to see if there was any way to limit administrator access. Please SM - consider adding this feature very soon. I want to give admin rights to another user, but I don't really want to give them full open access to everything. If we were able to specify which areas of the service they can access would be great. Specifically I'm looking to have this secondary admin account only have the ability to access the settings under the Security tab. Nothing under domains, and no other settings.

Report Abuse

Offensive Content

Wrong Category

Spam

Ban User

Are you sure you want to ban this user?

Ban IP Address

Are you sure you want to ban this IP Address?

Delete Confirmation

Amen to all the levels. At the very least, we would need a type for administrator that cannot modify anything to the Primary Administrator and cannot impersonate any users. And this should be a feature sooner, rather than later.

Ban IP Address

Delete Confirmation

Thank you all for your participation in this thread! I'm sorry to report that after much consideration, we will be marking this thread as Declined. At time this, modifying the administrator privileges is not currently on our road map.